89952e91d04a1ac393a8525c6f23a27fb810d39c37e425c9cde0ac3f90f66da5 | Triage

Sharing

General

Target

f0adbc2ac967656d0e9ff90a4a6c9130N.exe
Size

48KB
Sample

240905-w1rsxaxeme
MD5

f0adbc2ac967656d0e9ff90a4a6c9130
SHA1

6d1e79313309929a3ddf013e1326e3fd32b82604
SHA256

89952e91d04a1ac393a8525c6f23a27fb810d39c37e425c9cde0ac3f90f66da5
SHA512

37301a1958c31a4d5d15b78b3aa7cdaaa30d45f416d751dd0216dbdcba7118233a48f1977dbb800ff10fd3c45074fe9be7111b8dea923d65e03c75618f57e4a5
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLmuH9uHVoX+OEiJfoX+OQ:W7ZppApBULcfpHLcfpyD9uH9uH28mW30

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f0adbc2ac967656d0e9ff90a4a6c9130N.exe
- Size
  
  48KB
- MD5
  
  f0adbc2ac967656d0e9ff90a4a6c9130
- SHA1
  
  6d1e79313309929a3ddf013e1326e3fd32b82604
- SHA256
  
  89952e91d04a1ac393a8525c6f23a27fb810d39c37e425c9cde0ac3f90f66da5
- SHA512
  
  37301a1958c31a4d5d15b78b3aa7cdaaa30d45f416d751dd0216dbdcba7118233a48f1977dbb800ff10fd3c45074fe9be7111b8dea923d65e03c75618f57e4a5
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLmuH9uHVoX+OEiJfoX+OQ:W7ZppApBULcfpHLcfpyD9uH9uH28mW30
Score

9^/10

discovery ransomware
- Renames multiple (3396) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware